Before you start using Legal Tools, please note: THE SERVICES PROVIDED BY THE SUPPLIER ARE GOVERNED BY WHAT IS SET OUT IN THIS DOCUMENT. WE RECOMMEND YOU READ ITS CONTENT. IF YOU DO NOT AGREE WITH THE TERMS AND CONDITIONS HEREIN, YOU SHOULD NOT USE THE SERVICES. ANY USE IMPLIES ACCEPTANCE OF THESE TERMS, AND AS A RESULT, YOUR RELATIONSHIP WITH THE SUPPLIER WILL BE GOVERNED BY THEM. Please contact us if you have any questions or comments: ● Email: legal@legaltools.io SPECIFICATIONS AND FEATURES OF THE SERVICES The Supplier offers its clients computer systems under the software-as-a-service model, either owned or third-party systems, which include, depending on the contracted service, collaboration features to meet client needs for managing their internal and/or external operations, as described on the website www.legaltools.io (hereinafter, "Services"). The Supplier integrates services provided by third parties (hereinafter, "Third-Party Providers") who operate independently from the Supplier. When the Supplier offers such services, it does so as a distributor, marketer, and/or authorized integrator, as applicable. Third-Party Providers are not employees of the Supplier and are responsible for ensuring the quality level of their services, as well as the administrative, technical, and security measures necessary to protect the Content (defined as any data, information, image, or message owned by users and/or clients). Therefore, the Supplier is subject to the service levels provided by Third-Party Providers, as applicable, including those for infrastructure providers, electronic signature services, and related services. The description, scope, compensation, and payment terms for the contracted Services will be reflected in the purchase order, approved commercial proposal, quote, service contract, or any other document where the contracting of the Services is stated (DCS). By using the Services, you grant the Supplier and/or third-party providers your consent to perform individually or jointly all actions, functionalities, and acts necessary to provide the Services on your Content. Consequently, we understand that you are the owner or have the usage rights to the Content, it is legitimate, and its use does not violate any legal provision. The Supplier and/or third-party providers do not monitor, verify, or remove Content unless ordered by an administrative or judicial authority, in accordance with applicable law. Therefore, the Supplier and/or third parties, as applicable, provide the Services as offered on Legal Tools. CONSEQUENTLY, THE SUPPLIER DOES NOT PROVIDE ANY WARRANTY OF ANY KIND ON THE SERVICES OR LEGAL TOOLS, PARTICULARLY REGARDING INTERRUPTIONS, HARMFUL COMPONENTS, OR DAMAGES OR LOSSES. AUTHENTICATION CREDENTIALS Registration, access, and authentication in Legal Tools are carried out directly by users on Legal Tools through their email account and password. Therefore, the Supplier will assume that users maintain control over these credentials in accordance with applicable legal provisions. Remember, you are responsible for controlling your email and password, and thus you are responsible for maintaining their security and for any activity performed in Legal Tools using this authentication method. IF YOU BECOME AWARE THAT YOUR CREDENTIALS’ SECURITY HAS BEEN COMPROMISED, YOU MUST IMMEDIATELY NOTIFY THE SUPPLIER TO REVOKE YOUR ACCESS AND ENABLE THE CORRESPONDING SECURITY POLICIES. The Supplier will not be responsible for any unauthorized use of your account or any situation where your account’s security was compromised due to lack of care or negligence in handling your authentication credentials. SERVICES SUBJECT TO INTELLECTUAL PROPERTY The Services are subject to a non-exclusive, non-transferable, revocable, and limited usage license, either from the Supplier or third parties, depending on the contracted Services. Consequently: • This license may be terminated at any time if the client and/or users fail to comply with the provisions of this document. • The Supplier provides the client with access to Legal Tools, as well as any updates required for its functioning, complementary components, web services, and/or add-ons, insofar as these are not accompanied by a separate license agreement or terms of use, and only if they do not need to be quoted separately and approved and paid by the client before being delivered and implemented. • The Supplier does not transfer to the client any legal or property rights over the Services made available to the client, and only grants the usage license in accordance with the characteristics and limitations set forth in the DCS. • The Supplier does not authorize the client to grant sublicenses to third parties, and only grants the usage license in accordance with the characteristics and limitations established in the DCS. • The Supplier does not grant any usage license or rights to the client over trademarks, trade names, rights to exclusive use, software programs, or domain names owned by the Supplier or third-party providers. • The Supplier does not grant the client a usage license for resale or any other type of marketing and/or distribution of the Services provided under the DSC. • The client and users agree not to use the Services for any purpose not expressly permitted in the DSC and must ensure that their employees, suppliers, affiliates, agents, representatives, officers, contractors, and anyone connected to the client and having access to the Supplier's or third-party providers' Services refrain from doing so. • The duration of the software usage license will be as established in the DSC. • The client and users cannot sell, sublicense, reproduce, create derivative software programs, or distribute copies of the software systems made available by the Supplier under the services specified in the DSC, without prior, express, and written authorization from the Supplier. • The client and users cannot use or distribute any part of the software systems made available by the Supplier under the DSC that includes representations of individuals, governments, logos, initials, emblems, trademarks, or identifiable legal entities for any commercial purpose or to express or imply their recommendation or association with a product, service, legal entity, or activity. • The client and users agree to indemnify, safeguard, and defend the Supplier against any claims or lawsuits (including attorney fees) arising from the use or distribution of the software systems made available by the Supplier under the DSC. • The client and users must include a valid copyright notice on their products and services that include copies of designs, schemes, photographs, images, or software systems made available by the Supplier under the DSC. • The client and users agree to prevent unauthorized third parties, not previously, expressly, and in writing authorized by the Supplier, from distributing copies of the software systems made available by the Supplier under the DSC, without prior, express, and written consent from the Supplier, and agree to hold the Supplier harmless from any violations of its rights and/or third-party rights due to non-compliance with this clause, and to indemnify the Supplier for any resulting damages, including attorney fees. • The client and users agree not to use Legal Tools under any circumstance for: o Illegal actions or activities that promote illegal acts; o Defamation, harm, abuse, threats, or incitement to violence against an individual or a group; o Distribution of pornographic, discriminatory content, or content that victimizes or discriminates against a group based on religion, sex, sexual orientation, race, age, etc.; o Distribution of spam, robots, or unauthorized advertising; o Distribution of viruses or systems that intend to damage, destroy, or limit the functions of hardware, software, telecommunications equipment, or allow access to unauthorized third-party data or information; o Infringement of any intellectual property rights, including copyright, trade secrets, patents, trademarks, etc.; o Violating privacy rights of any individual. The ownership and intellectual property rights of the Services, including trademarks, processes, designs, images, photographs, animations, videos, audio, music, text, applets, computer systems, and embedded subprograms, are protected by applicable copyright and intellectual property laws and treaties. Such intellectual property is valuable to the Supplier and Third-Party Providers. Therefore, the client and/or user agrees to comply with all applicable copyright and intellectual property laws and treaties. All current or future rights over any intellectual property or other rights will remain the exclusive property of the Supplier and/or Third-Party Providers, as applicable. Any unlicensed use is reserved for the Supplier and/or Third-Party Provider, as applicable, and no other license or right is granted beyond those explicitly stated in these Terms and Conditions. CONSIDERATIONS FOR PAYMENT The Services are paid in accordance with the DCS, using one of the payment methods authorized by the Supplier. By using Legal Tools, the client agrees to pay the Supplier for the Services as stated in the DCS. The amount will be paid according to the conditions established in the DCS via electronic transfer to the Supplier's indicated bank account. Payment will be made following the delivery of an invoice by the Supplier, which must comply with all applicable tax law requirements and itemize applicable taxes. Failure to pay grants the Supplier the right to suspend or cancel the provision of the Services, with the client remaining responsible for any outstanding fees and charges. Payments for the Services are non-refundable if the Supplier has made the Services available to the users and/or clients or has undertaken activities related to the provision of the contracted Services. The client may terminate the provision of Services at any time by requesting it from the Supplier. The Supplier may terminate the provision of Services if: (i) the client fails to pay for the Services; (ii) the client fails to remedy a material breach within 30 days after notification; (iii) the relationship with a Third-Party Provider ends or conditions arise that are incompatible with the provision of the Services; or (iv) due to compliance with a legal requirement or authority order. In any case, the client remains responsible for payments incurred up to the termination date of the Services. Upon termination of Services, the Supplier will not retain Content or information belonging to the client, and the client should download their Content while their account is active. After one calendar year from the termination of the Services, the Supplier will only retain information that it is legally obligated to keep. Any use of the Services after the termination date will be subject to applicable fees and charges. PERSONAL DATA AND PRIVACY The Supplier will handle personal data as set forth in its Privacy Notice, published on the website https://www.legaltools.io. The handling of personal data by the Supplier will be exclusively for fulfilling the provision of Services and will not be transferred to third parties unless necessary to fulfill the Service's purpose. Once the Services are concluded and one calendar year has passed, the Supplier will delete any client Content, unless required by law to retain it, in which case administrative, technical, and physical security measures will be implemented to reasonably protect the information against damage, loss, alteration, destruction, or unauthorized use, access, or treatment. Content managed on Legal Tools will always remain the property of the clients, and consequently, the Supplier does not gain any rights over such Content. AVAILABILITY The Supplier offers Legal Tools' availability as published, without any guarantee of services not specified in this document, as well as the Service Level Agreement agreed upon with the client. The Supplier is subject to the service levels contracted with Third-Party Providers or telecommunications and infrastructure providers to ensure Legal Tools' availability and accessibility, so it does not guarantee that the service will always be available without interruptions or be 100% free from malicious systems, defects, or errors. The Supplier may perform corrective, maintenance, or update tasks on its information systems according to its security policies. CONFIDENTIALITY The Supplier will use the clients’ Content confidentially and exclusively for the provision of Services. It will not disclose or transmit it to third parties, except with the client's express consent or as required by competent authorities. The Supplier implements technical measures to ensure the security and confidentiality of information provided by the user and/or client in accordance with its information security policies. MODIFICATIONS Any change to the Services that requires modifying this document will be made by posting a new version at www.legaltools.io. By continuing to use the Services after the latest update, you agree to be bound by it. The Supplier will not be obligated to notify you in advance about changes made to address an emergency or risk of harm to the Services or to comply with any authority order. DISPUTE RESOLUTION MECHANISM If you believe the Services provided do not align with what is outlined in this document, you may initiate a dispute resolution procedure. This should be requested via email at legal@legaltools.io, detailing the facts and circumstances of the request. The Supplier will attempt in good faith to reach an agreement within 45 calendar days. If an agreement is reached, both parties will consider the resolution definitive. If no agreement is reached, the Supplier, clients, and/or users agree to first consider mediation as a dispute resolution procedure according to the WIPO Mediation Rules. Users and/or clients residing in Mexico may choose to mediate according to the Alternative Justice Law of the Superior Court of Justice of Mexico City. If the dispute is not resolved within 45 days from the mediation request, the Supplier, clients, and/or users agree to submit the dispute to arbitration under the WIPO Fast-Track Arbitration Rules. Users and/or clients residing in Mexico may opt to submit the dispute to the jurisdiction and laws of the courts in Mexico City. In addition, users and clients residing in Mexico are informed that, under the Federal Consumer Protection Law, the Federal Consumer Protection Agency is the competent authority to receive complaints or claims based on the law. Last update date: January 1, 2025

IF ANY DATA OR INFORMATION CONTAINED IN THIS NOTICE IS UNCLEAR OR IF YOU HAVE ANY QUESTIONS, DO NOT USE THE SERVICES AND CONTACT US AT THE EMAIL ADDRESS contacto@legaltools.io TO ASSIST YOU WITH THE SCOPE AND CONTENT OF THE PRIVACY NOTICE. Before using or accessing the services, you must carefully read the contents of this document, as by using the services outlined in this document, you expressly consent to the Provider processing your data for the purposes established in this notice. We inform you that JW LEGAL INNOVATION SAS DE CV (hereinafter "Provider"), with an address at Vicente Suárez 39, Condesa, Cuauhtémoc, C.P. 06400, Mexico City, Mexico, is responsible for processing your personal data in the provision of the services. When the Provider processes personal data on behalf of clients acting as data controllers, it does so as a data processor, either individually or jointly with third parties. In such cases, the Provider does not decide on the processing of personal data; rather, the processing is carried out in accordance with the instructions of the clients acting as controllers, and therefore, it is done on their behalf and for their account. PURPOSES The personal data we collect from you will be used for the following purposes necessary for the provision of the services (hereinafter "Services") in accordance with the Terms and Conditions published on the site https://www.legaltools.io/ (hereinafter "Site"): ● To integrate a database and manage access and/or use of the Services. ● To verify the authentication data of clients and/or users. ● Document management and regulatory compliance. ● Help desk management. ● Workflow generation and management. ● Shared work repository. ● To execute electronic signatures and advanced electronic signatures on data messages. ● Trust services, such as time stamps, stamps or certificates of data message retention, blockchain records, provided through Third-Party providers. ● To assist clients and/or users with any matters related to the provision of the Services. Additionally, we will use your personal information for the following secondary purposes, which are not necessary for the provision of the requested Services but allow us to provide you with better service: ● Marketing, advertising, and commercial prospecting activities. If you do not wish your personal data to be used for these secondary purposes, please send an email to contacto@legaltools.io stating: "I do not consent to my personal data being used for the following marketing, advertising, and commercial prospecting purposes." Refusing the use of your personal data for these purposes will not prevent us from providing the Services you request or contract with the Provider. Data Used for the Purposes To carry out the purposes described in this privacy notice, we may process the following personal data, depending on the Service used and/or contracted: ● Access data. ● Contact and billing data. ● If applicable, simple or advanced electronic signature data, depending on the case. The Provider will process, either directly or through third-party processors, the personal data for the purposes mentioned above that are necessary, appropriate, and relevant for the provision of the Services. When you use the Services to process personal data of third parties as a data controller, you are obligated and commit to obtaining the necessary consent from the data subjects before the Provider processes the personal data, and you agree to indemnify the Provider for any controversy caused by the unauthorized processing of the personal data involved. When using the Services to process personal data of third parties as a data controller, you are obligated to observe principles of legality, consent, information, quality, purpose, fairness, proportionality, and responsibility. In particular, when requesting the Provider to process personal data for the execution of electronic and advanced electronic signatures on data messages, identity verification mechanisms, due to the nature of the information that will be accessed, you are obligated to take the necessary measures to obtain the express written consent from the data subjects and retain such consent, with the understanding that you at least informed the data subject of: (i) the service requested from the Provider, (ii) the information that will be accessed, (iii) the purposes of such data collection, (iv) who will have access to the information, and (v) the purposes of the data. In all cases, you are obligated to ensure compliance with the applicable legal provisions for the protection of personal data and privacy when requesting Services, including those against discrimination, those that prevent serious risks to data subjects, and the implementation of control mechanisms necessary for the proper care, protection, and security of data management and authorizations to use, consult, analyze, review, or otherwise process the information obtained in connection with the Services. Exercise of Rights to Access, Rectify, or Cancel Your Personal Data As a user and/or client of the Provider, you have the right to know what personal data we hold about you, for what purposes we use it, and the conditions under which it is used (Access). You also have the right to request the correction of your personal information if it is outdated, inaccurate, or incomplete (Rectification); to have it deleted from our records or databases if you believe it is not being used properly (Cancellation); or to oppose the use of your personal data for specific purposes (Opposition). These rights are known as ARCO rights. To exercise any of the ARCO rights, you must submit a request by sending an email to contacto@legaltools.io with the following information and documents: ● Data and supporting document about the contract for Services. ● Purpose of your request (access, rectification, and/or cancellation) of personal data. ● Identification data. ● Identity document. ● Email address to communicate the response to your request. ● Any other information you wish to share to process your request. Revocation of Your Consent for the Processing of Your Personal Data or Limitation of the Use or Disclosure of Your Personal Information As a user and/or client of the Provider, you have the right to revoke the consent you have given for the processing of your personal data, as well as to limit the use and disclosure of your personal information. However, it is important to note that in some cases, we may not be able to immediately comply with your request or stop using your data, as we may be required by law to continue processing your personal data. You should also be aware that for certain purposes, revoking your consent or limiting the use or disclosure of your personal information could mean that we can no longer provide the Services to you, or it may terminate your relationship with the Provider. Changes to this Privacy Notice This Privacy Notice may undergo modifications, changes, or updates due to new legal requirements, to improve the provision of the Services, as a result of the implementation of security policies in accordance with our privacy practices, changes in the business model, or other reasons. We commit to keeping you informed about any changes to this privacy notice by publishing the latest version on the Site. Confidentiality and Security The Provider will treat the information provided by the data subject, clients, and/or users confidentially and solely for the purposes outlined in this Privacy Notice. The Provider implements administrative, technical, and physical security measures in accordance with the reasonable expectation of protection and privacy for the Services. In the event of a security breach that significantly affects the personal data of clients and/or users, the Provider will notify the responsible party and/or identified data subject by email to take the necessary actions, disclaiming responsibility if the breach is not attributable to the Provider. Use of Cookies and Web Beacons The Provider may use cookies to store preferences and facilitate and/or improve the use of the Site or the Services, which may include: ● Preferred language ● User's region ● Type of browser used The Provider may also use web beacons, such as embedded images, to monitor visitor behavior on the Site, such as information about IP address, interaction time, etc. Remember, you can configure your browser to reject cookies and/or web beacons. Mechanism for Claim Resolution or Clarifications If you believe in good faith that the Provider is not complying with the terms outlined in this Privacy Notice, you may initiate a dispute resolution procedure to reach an agreement. This should be requested via email to contacto@legaltools.io, detailing the facts and circumstances supporting your request. The Provider will attempt in good faith to reach an agreement within no more than 45 calendar days. If an agreement is reached, both parties will consider the agreed solution final. If no agreement is reached, the Provider, clients, and/or users agree to discuss and consider mediation as a dispute resolution procedure, in accordance with the WIPO Mediation Rules. Mexican users and/or clients may choose to conduct mediation in accordance with the Alternative Justice Law of the Superior Court of Justice for the Federal District (now Mexico City). If the dispute is not resolved within 45 days from the request for mediation, the Provider, clients, and/or users agree to submit the dispute to arbitration for final resolution, according to the WIPO Accelerated Arbitration Rules. Mexican users and/or clients may opt to submit the dispute to the jurisdiction and laws of the courts in Mexico City, expressly waiving any other jurisdiction that may apply based on their present or future domicile. Additionally, users and clients residing in Mexico are informed that, according to the Federal Consumer Protection Law, the Federal Consumer Protection Agency is the authority in Mexico responsible for receiving individual or group complaints or claims under said law. Update Date: January 1, 2025.

This document governs the use of Legal Tools in all its components and constitutes the Service Level Agreement offered to customers using Legal Tools regarding the quality levels in the provision of services. Legal Tools commits to ensuring service availability with an Uptime Percentage of at least 99% per billing period, using commercially reasonable efforts. If the stated percentage is not met, the customer will receive service credits for the time the services were unavailable. Availability and Continuity Legal Tools is subject to the service levels agreed upon with third-party telecommunications and infrastructure providers to ensure service availability and accessibility. Therefore, it does not guarantee that the service will always be available and uninterrupted, or that it will be 100% free from malicious systems, defects, or errors. In its reasonable commitment to providing high-level services, Legal Tools adopts a philosophy of proactive, continuous monitoring. This approach is based on detecting potential failures and identifying opportunities to optimize service performance. Maintenance windows will not exceed seven hours per month. We will make commercially reasonable efforts to notify customers about maintenance windows. Automated Operation Routines Legal Tools performs real-time proactive maintenance activities, including: •Kubernetes Cluster Checks: oAvailability zones: Ensuring the cluster is available across multiple zones. oNode lifespan: Ensuring no node exceeds 14 natural days of operation. oMicroservices deployment strategy: Ensuring each microservice is available on at least three distinct nodes. oFileSystem request level: Ensuring it does not exceed 80% per node. oRAM usage: Ensuring it does not exceed 80% capacity per node. ovCPU usage: Ensuring it does not exceed 80% capacity per node. •Microservices Availability Checks: oNumber of microservice replicas: Ensuring no fewer than three replicas per microservice. oMicroservice availability based on health checks: Ensuring response times do not exceed 200ms three times consecutively. •Database Performance: oActive connections. oRAM usage. oHard disk space usage. •Prevention Routines •Backend Checks: oPlatform log reviews for: oApplication login. oUser registration. oConnections. • Database performance: oActive connections. oRAM usage. oHard disk space usage. • Alarm configurations, e.g., SNMP. Incident Resolution We are committed to restoring services based on the criticality level of the issue. Incidents are classified into several levels, and response and resolution times vary depending on the severity and impact on services. •Critical: Severe impact on included services, such as total system failure or significant capacity reduction. •High: Partial loss of included services or situations that, if not addressed promptly, could lead to emergencies. Significant performance degradation or hardware/software issues affecting performance but not service availability. •Medium: Minor performance degradation with lower urgency than high-priority issues. •Low: Lower urgency than medium-priority issues, with minimal performance impact. •Non-Critical: Cases without failures but requiring observation, analysis, or additional adaptation. Incident Management We are committed to managing service capacity for subscribers according to the signed contract and the priority of the issue, in line with our information security policies. Support Service Customers can contact us via email or directly through their assigned account executive’s phone number. We recommend providing as much detail as possible during support requests. •Your account executive will contact you via email according to the incident handling times described in this document. •Any other communication channels will not be considered for support services. •Our support hours are:} oBusiness days from 09:00 AM to 06:00 PM (UTC-6). This applies unless the customer has contracted a different support service schedule. Update Date: January 1, 2025.